Security Awareness

This was a phishing simulation

A brief teachable moment to help you spot similar threats in real life.

Good news: This was an internal security awareness test. No credentials were requested and no personal data was collected here.

You clicked a message designed to look legitimate but contain warning signs. The purpose is to build safer habits, not to punish anyone.

Red flags in the message

  • A slightly misspelled sender or link domain
  • A generic greeting (for example, "Hello Employee")
  • Artificial urgency ("act now" or immediate consequences)
  • Pressure to click a link instead of using official channels
Tip: Real internal requests should come from trusted domains and standard processes. When in doubt, verify the request directly with IT/HR.

What to do next time

  • Hover over links and confirm the destination domain
  • Check sender details, not only the display name
  • Report suspicious emails to Security or IT

Need help? Contact operation@bimobject.com or message the #it-support channel on Slack.